Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/QrXE_qFw5C6yORCQCkQ65hTDYJ8.roa
File: QrXE_qFw5C6yORCQCkQ65hTDYJ8.roa (raw, json)
Hash identifier: ClpDM/sAvxacr1eEs8LYdtrPBJQTHMPN3KqQJzo6T1g=
Subject key identifier: 42:B5:C4:FE:A1:70:E4:2E:B2:39:10:90:0A:44:3A:E6:14:C3:60:9F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0874C753
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/QrXE_qFw5C6yORCQCkQ65hTDYJ8.roa
Signing time: Sat 01 Jan 2022 04:02:29 +0000
ROA not before: Sat 01 Jan 2022 04:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20663
IP address blocks: 109.188.0.0/16 maxlen: 24
46.29.192.0/21 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
81.24.128.0/20 maxlen: 24
79.171.8.0/21 maxlen: 24
78.41.100.0/22 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
109.74.112.0/20 maxlen: 24
188.162.0.0/16 maxlen: 24
46.232.200.0/21 maxlen: 24
37.29.0.0/17 maxlen: 24
37.28.160.0/19 maxlen: 24
78.25.64.0/18 maxlen: 24
62.64.0.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
46.229.128.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141870931 (0x874c753)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 04:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42b5c4fea170e42eb23910900a443ae614c3609f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:98:8f:f2:16:7f:ae:a6:76:39:da:01:ae:9e:
89:22:af:53:e4:d5:74:a8:43:d0:91:20:a3:18:3e:
f9:79:4b:de:05:2d:77:fd:60:d3:67:85:93:8d:8b:
39:7a:a4:27:82:93:1d:b2:87:2e:72:2f:73:7a:ed:
eb:fa:c7:79:1e:5f:4d:69:cc:23:42:92:98:98:b3:
77:b7:3b:ef:9d:69:28:0d:40:4f:dc:dc:9d:4e:a2:
f8:cd:78:22:60:8a:04:51:f2:0f:3d:7f:7d:25:4a:
05:00:01:a1:99:ea:18:3e:72:06:46:91:4b:22:1e:
26:72:55:74:2f:e4:54:63:cc:9f:ae:5e:6a:ac:7d:
9d:35:a7:2c:cf:6b:3b:b3:5d:b4:d3:36:71:06:cd:
1a:7d:e5:e7:2f:c4:52:60:e4:07:1b:83:78:ff:cb:
b4:11:5c:19:c4:82:41:84:15:ae:33:89:af:33:6d:
ff:86:c3:9e:c4:56:84:a1:61:53:55:fc:bb:6b:b4:
9b:8f:d4:44:75:78:06:51:f8:bd:dc:1b:71:7f:57:
29:99:67:f5:46:50:92:56:f7:8a:4c:b3:18:14:84:
54:4d:ac:95:ae:86:02:19:b7:50:af:20:96:ac:d6:
6d:0c:ad:e9:b0:13:09:e0:5d:1d:b5:d2:d0:c0:fc:
ed:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:B5:C4:FE:A1:70:E4:2E:B2:39:10:90:0A:44:3A:E6:14:C3:60:9F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/QrXE_qFw5C6yORCQCkQ65hTDYJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.160.0/19
37.29.0.0/17
46.29.192.0/21
46.229.128.0/20
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
3a:4f:a6:35:7f:b6:e3:6f:83:e5:e9:8e:f6:41:22:ac:71:ea:
44:7a:7e:e9:34:ed:42:a0:c5:cd:cc:00:27:5b:4c:0a:85:e5:
b6:88:9a:77:f7:07:34:27:e6:7d:34:96:d5:6a:83:c3:3e:47:
98:a0:34:c6:e1:37:35:2e:7f:9e:3a:9f:88:32:7f:40:c1:f7:
1d:73:0d:8f:fb:1e:9c:6e:c8:94:f1:f1:15:4e:4b:6d:bd:3d:
83:80:53:39:e5:1d:8d:62:07:df:57:49:38:3c:d9:4e:2b:45:
40:9a:a5:d3:a6:38:2e:40:a2:0d:58:2e:9a:8d:dd:81:43:2e:
aa:3e:e5:9d:37:95:9a:5c:ef:e7:f8:6e:5c:9a:64:91:f9:6b:
de:ab:67:98:e4:de:1e:00:e1:27:f0:6b:75:18:98:5b:88:9d:
26:5f:c4:fc:ee:12:00:1e:68:f3:7a:52:e9:a8:38:b3:4b:f7:
88:8a:e0:f6:3d:c0:21:85:78:e2:92:6c:8a:c6:73:02:2b:d6:
fe:1c:5b:8c:0a:ff:d4:f5:2f:3c:49:5c:29:99:d8:b9:6f:3b:
05:77:b3:3a:75:f1:34:d4:23:77:82:11:a2:31:a7:ed:e7:a5:
aa:58:cc:e2:f0:1e:20:27:e3:e7:d1:f8:4b:5c:24:2c:8f:ce:
c9:82:24:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:25 2024 by rpki-client on console-fra.rpki-client.org